US5481672A - Detecting rewriting of stored data, using codes based on password and the stored data - Google Patents

Detecting rewriting of stored data, using codes based on password and the stored data Download PDF

Info

Publication number
US5481672A
US5481672A US07/842,514 US84251492A US5481672A US 5481672 A US5481672 A US 5481672A US 84251492 A US84251492 A US 84251492A US 5481672 A US5481672 A US 5481672A
Authority
US
United States
Prior art keywords
code
data
newly prepared
stored
password
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
US07/842,514
Other languages
English (en)
Inventor
Yasuhiro Okuno
Tadashi Yamakawa
Masaaki Nagashima
Takayuki Sasaki
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Canon Inc
Original Assignee
Canon Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from JP3032896A external-priority patent/JPH04271462A/ja
Priority claimed from JP3032913A external-priority patent/JPH04271466A/ja
Priority claimed from JP3032911A external-priority patent/JPH04271461A/ja
Priority claimed from JP3032912A external-priority patent/JPH04271465A/ja
Application filed by Canon Inc filed Critical Canon Inc
Assigned to CANON KABUSHIKI KAISHA, A CORP. OF JAPAN reassignment CANON KABUSHIKI KAISHA, A CORP. OF JAPAN ASSIGNMENT OF ASSIGNORS INTEREST. Assignors: NAGASHIMA, MASAAKI, OKUNO, YASUHIRO, SASAKI, TAKAYUKI, YAMAKAWA, TADASHI
Application granted granted Critical
Publication of US5481672A publication Critical patent/US5481672A/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6209Protecting access to data via a platform, e.g. using keys or access control rules to a single file or object, e.g. in a secure envelope, encrypted and accessed using a key, or with access control rules appended to the object itself
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2211/00Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
    • G06F2211/007Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2151Time stamp

Definitions

  • the present invention relates to a method in a data processing system for creating, registering and managing the document or program, wherein the method includes determining whether or not the content of stored data is a valid data which remains as created and stored by the authorized user, and if improper rewrite is made, detecting the face that the rewrite has been made.
  • the permission for the write, the reference (read), and the execution into each file can be given to the owner of the file, the group of joint work, and other users.
  • An object of the present invention is to provide a method for determining whether or not the content of stored data is a valid data which remains as created and stored by the authorized user, and detecting the fact that the improper rewrite, if any, has been made.
  • Another object of the present invention is to provide a data processing method for determining whether or not the improper rewrite of processed data has been made, and inhibiting the execution of the processing if the improper rewrite is made.
  • Another object of the present invention is to make the operation simpler when repeating the above-mentioned determination for a plurality of data.
  • Another object of the present invention is to store the determination information for the above-mentioned determination and make the management simpler.
  • the present invention which achieves these objectives relates to a method for determining whether or not the improper rewrite of stored data has been made, comprising steps of in storing the data, inputting a password, generating a first code by converting the input password and the stored data in a predetermined procedure, storing the first code in correspondence to the stored data, and in reading the stored data, inputting the password, generating a second code by converting the input password and the stored data in the predetermined procedure, comparing the generated second code and the first code stored in correspondence to the stored data, and determining that the improper rewrite has been made if the comparison result is unmatched.
  • the present invention which achieves these objectives relates to a method for determining whether or not the improper rewrite of stored data has been made, comprising steps of in storing the data, storing the data with a storing time appended, inputting a password, extracting the storing time from the stored data, generating a first code by converting the input password and the extracted storing time in a predetermined procedure, storing the first code in correspondence to the stored data, and in reading the stored data, inputting the password extracting the storing time from the stored data, generating a second code by converting the input password and the extracted storing time in the predetermined procedure, comparing the generated second code and the first code stored in correspondence to the stored data, and determining that the improper rewrite has been made if the comparison result is unmatched.
  • the present invention which achieves these objectives relates to a method for determining whether or not the improper rewrite of stored data has been made, comprising steps of in storing the data, storing the data with a first storing time appended, inputting a password, extracting the first storing time from the stored data, generating a first code by converting the input password and the extracted first storing time in a predetermined procedure, restoring the data with the generated first code appended distinguishably, changing a second storing time appended to the restored data to the first storing time, and in reading the stored data, inputting the password, extracting the first storing time from the stored data, generating a second code by converting the input password and the extracted first storing time in the predetermined procedure, comparing the generated second code and the first code appended to the stored data, and determining that the improper rewrite has been made if the comparison result is unmatched.
  • the present invention which achieves these objectives relates to a method for determining whether or not the improper rewrite of stored data has been made, comprising steps of in storing the data, storing the data with a first storing time appended, inputting a password, inputting the time information, generating a first code by converting the input password and the time information in a predetermined procedure, restoring the data with the generated first code appended distinguishably, changing a second storing time appended to the restored data to the time information, and in reading the stored data, inputting the password, extracting the time information from the stored data, generating a second code by converting the input password and the extracted time information in the predetermined procedure, comparing the generated second code and the first code appended to the stored data, and determining that the improper rewrite has been made if the comparison result is unmatched.
  • the present invention which achieves these objectives relates to a method for determining whether or not the improper rewrite of stored data has been made, comprising steps of in storing the data, determining the user, generating a first code by converting the information corresponding to the determined user and the stored data in a predetermined procedure, storing the first code in correspondence to the stored data, and in reading the stored data, determining the user, generating a second code by converting the information corresponding to the determined user and the stored data in the predetermined procedure, comparing the generated second code and the first code stored corresponding to the stored data, and determining that the improper rewrite has been made if the comparison result is unmatched.
  • the present invention which achieves these objectives relates to a method for determining whether or not the improper rewrite of stored data has been made and making the processing in accordance with the determined result, comprising steps of in storing the data, inputting a password, generating a first code by converting the input password and a predetermined portion of the stored data in a predetermined procedure, storing the first code in correspondence to the stored data, and in processing the stored data, inputting the password, generating a second code by converting the input password and the predetermined portion of the stored data in the predetermined procedure, comparing the generated second code and the first code stored in correspondence to the stored data, and executing the processing if the comparison result is matched, and prohibiting the execution of the processing if the comparison result is unmatched.
  • FIG. 1 is a system configuration diagram in the first example.
  • FIG. 2 is a flowchart for a document creating and registering process in the first example.
  • FIG. 3 is a flowchart for a code generating process in the first example.
  • FIG. 4 is a flowchart for a justification identification process in the first example.
  • FIG. 5 is a system configuration diagram in the second example.
  • FIG. 6 is a flowchart for a code generating process in the second example.
  • FIG. 7 is a system configuration diagram in the third example.
  • FIG. 8 is a flowchart for a correspondence process in the third example.
  • FIG. 9 is a view showing an example of document data with a justification identification code appended.
  • FIG. 10 is a flowchart for a code generating process in the third example.
  • FIG. 11 is a flowchart for a comparison process in the third example.
  • FIG. 12 is a system configuration diagram in the fourth example.
  • FIG. 13 is a flowchart for a correspondence process in the fourth example.
  • FIG. 14 is a diagram showing the transition of time stamp in the fourth example.
  • FIG. 15 is a system configuration diagram in the fifth example.
  • FIG. 16 is a flowchart for a code generating process in the fifth example.
  • FIG. 17 is a flowchart for a correspondence process in the fifth example.
  • FIG. 18 is a diagram showing the transition of time stamp in the fifth example.
  • FIG. 19 is a system configuration diagram in the sixth example.
  • FIG. 20 is a flowchart for a document creating and registering process in the sixth example.
  • FIG. 21 is a flowchart for a code generating process in the sixth example.
  • FIG. 22 is a flowchart for a justification identification process in the sixth example.
  • FIG. 23 is a system configuration diagram in the seventh example.
  • FIG. 24 is a flowchart for a document creating and registering process is the seventh example.
  • FIG. 25 is a flowchart for a code generating process in the seventh example.
  • FIG. 26 is a flowchart for a justification identification process in the seventh example.
  • FIG. 27 is a flowchart for a log-in directory fetching process.
  • FIG. 28 is a flowchart from the justification identification process to the print process in the eighth example.
  • FIG. 1 is a diagram showing a system configuration of this example.
  • a console having a device for the input to a computer (e.g., keyboard) and a device for the display of a response from the computer (e.g., CRT).
  • a computer e.g., keyboard
  • a device for the display of a response from the computer e.g., CRT
  • 2 is a CPU for controlling each device via a bus 4 and executing various processes with processing programs stored in a program memory 10, and 3 is an output device for the print-out or the display on to a screen.
  • 20 is a data memory such as FD or HD for storing a document data or a justification identification code file 23 as thereinafter described in the file format.
  • 30 is a main memory composed of RAM or the like, in which an input password 31, a justification identification code 32 as thereinafter described, a determined result 33, time stamp + password 34, and a comparison code 35 are stored, and comprising various work areas for use in editing the document, for example.
  • 10 is a main memory composed of ROM or the like for storing various processing procedures including the processing procedures corresponding to the flowcharts as shown in FIG. 2 to FIG. 4, herein referred to as a program memory. Note that it is unnecessary for these memories 10, 20, 30 to be physically separate.
  • the processing is largely divided into two parts of creating and registering the document and identifying the justification for the content.
  • FIG. 2 is a flowchart showing the flow of a document creating and registering process.
  • the document creator created and edits a document using a console 1, and stores it into the document data 21 as a file. This is generally performed with a document creating/editing device called an editor.
  • the document data 21 stored in the memory 20 has a time stamp (final update time) at the time of creating the file appended. This is automatically performed by the operating system such as a unix.
  • a password of the document creator is obtained.
  • the document creator is requested to input the password through the console 1, and the password input therethrough is stored in the password 31 in the memory 30.
  • step S23 the time stamp appended to the file and the password is encoded to generate a justification identification code.
  • This time stamp and the password may be only a byte train, rather than a character train.
  • step S31 the time stamp of the document data 21 and the password 31 are stored in time stamp + password 34 as a series of character train.
  • the time stamp + password is encoded.
  • This encoding means can be implemented with the same algorithm as in the encoding of password in unix, for example. This is to convert a character train into another character train with a method virtually not allowing the inverse conversion.
  • this method only accepts the fixed-length character train (e.g., eight bytes), and the time stamp + password contains a character train exceeding that fixed-length, that character train needs to be made the fixed-length in the following way.
  • the fixed-length character train e.g., eight bytes
  • the time stamp + password is separated into each eight bytes.
  • exclusive OR exclusive OR: EX-OR
  • EX-OR exclusive OR
  • the eight byte code can be eventually obtained. This is converted into a printable character code. In doing do, the inappropriate code (e.g., a line feed code) is appropriately converted. Encoding this character code allows an encoded character train specific to the document to be obtained.
  • this encoding is not to limit the input or output to the character train, but may be handled only as the byte train.
  • the code generated therein is called a justification identification code, and stored in the justification identification code 32 of the memory 30.
  • the justification identification code 32 may be displayed on the console 1.
  • step S24 in FIG. 2 a correspondence process of the created document to the justification identification code is performed.
  • the justification identification code is stored in a file having an expander appended after the document name. That is, if the created document is a file with identified as "text”, the justification identification code is stored in the justification identification code file 23 with a file name of "text.code”. Thereby, the created document data file and the justification identification code file, in the mutually corresponding form, are stored in the memory 20.
  • the above operation is a process for creating and registering the document.
  • the document data file 21 and the file containing the justification identification code or the justification identification code file 23 are already stored.
  • step S41 the file name for the identification is specified from the console 1.
  • step S42 the password is input from the console 1 and stored in the password 31 of the memory 30.
  • the justification identification code is generated from the time stamp of the file of interest and the input password in the same procedure as at step S23 in FIG. 2, and stored in the justification identification code 32 of the memory 30.
  • This justification identification code 32 is newly generated, and is different from the justification identification code 32 generated in the document creating and registering process.
  • step S44 the content (character train) of the justification identification code file 23 corresponding to the specified document data is read into the comparison code 35, for the comparison between the code 35 and the content (character train) of the justification identification code 32 generated herein. Its result is identified as yes if they are equal, or otherwise no, for example, and stored in the decision result 33.
  • step S45 it is displayed as the character train of "yes” or "no" on the console 1 or a screen of the output device 3. Of course, this display may be arbitrarily made if the decision result can be distinguished. Also, this comparison result may be used as an input into a certain process.
  • the document is determined as a valid (unaltered) one.
  • the alteration of the document can be detected unless the same password as at the creation is not used in generating the code (i.e., the password is not known).
  • the above operation is the justification identification process.
  • the document is decided as "invalid".
  • the justification identification code was generated from the time stamp appended to the document data file and the password input by the user, while in the second example, the justification identification code is generated from the character train which is a content of the document data file and the password input by the user.
  • the file can be decided as "valid” if the content of the document itself is not altered even though the file is updated (for example, the time stamp is changed as the file has been copied to another directory).
  • FIG. 5 is a diagram showing the system configuration in the second example.
  • the hardware constitution is not changed from that of FIG. 1, but the content of the memory is different in part.
  • the program memory 10 stores a processing procedure as shown in FIG. 6, instead of that of FIG. 3, and the main memory 30 is provided with text content + password 36, instead of time stamp + password 34 in FIG. 1.
  • This example is also divided into two sections of a document creating/registering process and a justification identification process.
  • step S21 to step S22 is the same as in the first example.
  • the code generating process at step S23 is different from the first example, the flow of the code generating process in this example will be described with reference to FIG. 6.
  • the document content of the text data 21 and the password 31 are stored as a series of character train into text content + password 36.
  • the password and the text content may not be the character train but only the byte train.
  • step S62 the text content + password 36 is encoded.
  • This encoding procedure is the same as in the first example.
  • the generated code (justification identification code) is stored in the justification identification code 32 of the memory 30.
  • the above operation is the code generating process.
  • step S24 the correspondence process of the justification identification code 32 to the text data 21 is executed, in the same way as in the first example.
  • the above operation is the document creating/generating process.
  • This process is basically the same as in the example 1, and in accordance with FIG. 4.
  • processing at step S43 is different in that the justification identification code is generated from the text content of the file of interest and the password input at step S42, in the same procedure as at step S61 and S62.
  • the justification identification code is provided as a file independent of the corresponding document file, while in the third example, the document data and the justification identification code thereof are stored in the same file.
  • FIG. 7 is a system configuration diagram in the third example.
  • the hardware constitution is not changed from that of FIGS. 1 and 5, but the content of the memory is different in part.
  • the program memory 10 stores a processing procedure as shown in FIGS. 2, 4, 8, 10 and 11, and the main memory 30 is the same in FIG. 5, but the data memory 20 does not have the justification identification code file.
  • the process is also divided into two selections of a document creating/registering process and a justification identification process.
  • the justification identification code 32 is generated from the text content and the input password.
  • the feature of this example is a correspondence process as at step S24.
  • the document data and justification identification code are stored in the text data 21 and the justification identification code 32, respectively.
  • the text data and the justification identification code are stored in one file in the form of being distinguishable from each other (for example, a punctuation symbol is interposed therebetween as shown in FIG. 9).
  • a specific text punctuation symbol for example, a line only consisting of a character train of ⁇ *code*>, is appended to the file end of the text data.
  • the justification identification code 32 is further appended to the file end of the text data 21.
  • the content of original document, and the justification identification code thereof exist in one file so as to be distinguishable with the text punctuation symbol of ⁇ *code*>.
  • step S24 is finished.
  • the above operation is the document creating/registering process.
  • the text data file (including the justification identification code for that text) is already stored in the memory, when starting this process.
  • the justification identification code is generated from the text data file 21 of interest and the password 31, with the encoding, and stored in the justification identification code 32.
  • This code generating process will be described with reference to FIG. 10. This process is slightly different from the code generating process performed at the time of creating and registering the document.
  • step S101 the character train just before the punctuation symbol ⁇ *code*> in the text data 21 and the character train stored in the password 31 are stored in text content + password 36 as a series of character train.
  • step S102 the text content + password 36 is encoded, and stored in the justification identification code 32.
  • the encoding method for the character train may be the same as in the previous examples.
  • step S44 the comparison between the content (character train) of the justification identification code created beforehand and stored in the same file as the text data and the content (character train) of the justification identification code 32 created at step S43 is made.
  • step S111 the text data in the text data file from immediately after the text punctuation symbol until the file end is read and stored in the comparison code 35 of the memory 30.
  • step S112 the comparison between the content of the comparison code 35 and the content of the justification identification code 32 is made, in which yes if equal and no if otherwise is stored in the decision result 33.
  • the above operation is the comparison decision process at step S44.
  • step S45 the content of the decision result 33 is displayed on the console 1 or the screen of the output device 3, for example, as the character train of "yes". Also, this may be used as the input into a certain process.
  • the addition of the code is the update of the text data if the justification identification code including the time and the text data are stored in the same text data, as in the third example, so that the time information (last update time at the code generation) in the justification identification code and the time stamp (update time of appending the generated code) in the text data are inconsistent, whereby there is the problem that even if the confirmation is made in this state, the rewrite is always determined, and it can not be decided whether or not the improper rewrite has been made.
  • the justification identification code and the text are stored in the same text in the form of being distinguishable from each other, in which the time stamp of the created document is made coincident with the time in the code, so that the consistency with the time information contained in the code is retained to allow the code for confirming the alteration of the text content to be stored in the same file as the text.
  • FIG. 12 is a system configuration diagram in this example.
  • the process is also divided into two sections of a document creating/registering process and a justification identification process for the text content.
  • step S24 the process of creating the text data 21 including the justification identification code 32 by appending the justification identification code 32 to the document data 21 is performed.
  • the document data 21 and justification identification code 32 are stored.
  • the text data followed by the justification identification code is stored in one file in the form of being distinguishable from each other (for example, a punctuation symbol is interposed therebetween) (FIG. 9).
  • step S131 the time stamp of the text data 21 is fetched and stored as the regular time stamp 37 of the text data 21.
  • a specific text punctuation symbol for example, a line only consisting of a character train of ⁇ *code*>, is appended to the file end of the text data.
  • the justification identification code 32 is further appended to the file end of the text data 21.
  • the content of original document, and the justification identification code thereof exist in one file in the form of being distinguishable with the text punctuation symbol of ⁇ *code*>.
  • the time stamp of the text data 21 has been updated with the process of appending the punctuation symbol and the justification identification code at steps S132 and S133, and is different from the time stamp at the time of generating the justification identification code 32, so that the time stamp written in the justification identification code 32 and that in the text data 21 are inconsistent.
  • step S134 the time stamp of the text data 21 is replaced with the regular time stamp 37, so that the time stamp used for the generation of the justification identification code 32 and that in the text data 21 is held consistent.
  • This time stamp replacement process can be implemented, for example, by using "utime” (a system call for altering the time stamp of the file) which is one of the system calls in the UNIX operating system.
  • FIG. 14 shows the transition state for the text data and the time stamp in each step of FIG. 13 in the correspondence process of the text data to the justification identification code, as described in FIG. 13.
  • the above operation is the document creating and registering process.
  • the process for identifying the justification for the registered text can be performed in the same way as in the third example, using the text data 21 (including the justification identification code for that text).
  • the time stamp used in generating the justification identification code was the time stamp of the text data 21 originally created. This example is characterized in that arbitrary time can be set as the time stamp in generating the justification identification code.
  • FIG. 15 is a system configuration diagram of this example.
  • the hardware constitution is the same as in FIG. 1, except that the user can input an arbitrary time information for the time stamp from the console 1, and the processing procedure for appending the time stamp based on the input information is provided in the memory 10, and therefore the detailed explanation for other portions will be omitted.
  • the processing flow of this example is substantially the same as in the fourth example, but different from the previous examples in the justification identification code generating process and the correspondence process of the text data to the justification identification code, which is a feature of this example.
  • the justification identification code generating process will be described with reference to FIG. 16.
  • an arbitrary time is input from the console 1, and its result is stored in the regular time stamp 37.
  • the current time may be used as the regular time stamp, by inputting "now", or the free time (year/month/date/minute/second) may be set.
  • the regular time stamp 37 and the password 31 are stored in time stamp + password 34, and encoded to generate the justification identification code, which is then stored in the justification identification code 32 of the memory 30.
  • the justification identification code generating process is completed.
  • the justification identification code is stored after the text data in one file in the form of being distinguishable from each other (for example, a punctuation symbol is interposed therebetween) (FIG. 9), like the fourth example.
  • a specific text punctuation symbol for example, a line only consisting of a character train of ⁇ *code*>, is appended to the file end of the text data 21. If the character train of ⁇ *code*> is used as the text content, rather than the punctuation symbol, care must be taken not to produce the line only consisting of the character train of ⁇ *code* >.
  • the justification identification code 32 generated at step S163 is further appended to the file end of the text data 21.
  • the content of original document, and the justification identification code thereof exist in one file in the form of being distinguishable with the text punctuation symbol of ⁇ *code* >.
  • the time stamp of the text data 21 has been updated with the process of appending the punctuation symbol and the justification identification code in the same procedure as at steps S132 and S133 of the fourth example, and is different from the time stamp at the time of generating the justification identification code 32. Accordingly, the time stamp written in the justification identification code 32 and that in the text data 21 are inconsistent.
  • the time stamp of the text data 21 is replaced with the regular time stamp 37, so that the time stamp written in the justification identification code 32 and that in the text data 21 is held consistent. With the above operation, the correspondence process is completed.
  • the regular time stamp 37 is one as set with the time stamp input at step S161.
  • This time stamp replacement process can be implemented, like the previous example, by using the system call "utime".
  • FIG. 18 shows the transition state for the text data and the time stamp in each step of FIG. 17 in the correspondence process of the text data to the justification identification code, as described in FIG. 17.
  • the identification code is generated using the information of identifying the user not dependent on the text, instead of the password for each text.
  • FIG. 19 is a system configuration diagram of this example.
  • This system is only different from FIG. 5 in the content of the program memory 10, and in that the main memory 30 is provided with a user name 38 as will be described later and a text content + user name 39, instead of the password 31 and the text content + password 36.
  • the processing flow of this example is largely divided into two sections of a document creating and registering process and a justification identification process for the content.
  • FIG. 20 is a flowchart showing the document creating and registering process.
  • step S201 the text is created and edited, and stored in the text data 21 as a file, like the previous examples.
  • step S202 the user name of the text creator is obtained, and stored in the user name 38. This is obtained with a whoami command in the unix, C-shell, for example.
  • the justification identification code is generated by encoding the content of the text data 21 and the character train stored in the user name 38.
  • This code generating process can be executed with a procedure of storing the content of the text data 21 and the user name 38 into the text content +user name 39 as a series of character train (step S211), and encoding the text content + user name 39 (step S212), as shown in FIG. 21. This is fundamentally the same as in FIG. 3, and the detailed explanation will be omitted.
  • the generated code is stored as the justification identification code 32, and the code generating process is completed.
  • step S204 the correspondence process of the created text to the justification identification code is executed.
  • This can be performed like the first example, and the correspondence of the text data to the justification identification code can be done by storing the justification identification code into the file having the file name of the text file name followed by the expander.
  • the created text data 21 file and the justification identification code file 23 have been stored in the memory 20 in the mutual corresponding form.
  • the above operation is the text creating and registering process.
  • step S222 the user name is obtained (step S222), instead of the password input (step S42) of FIG. 4, and therefore the step S222 will be only described.
  • step S222 a user name of the user to perform the identification process is obtained and stored in the user name 38 of the memory 30. This is the same as at step S202 of FIG. 20.
  • the justification identification code is generated from the content of specified text data 21 and the user name 38, and compared with the content of justification identification code file 23 corresponding to the specified text data, in which yes if they are equal, or no if otherwise is displayed on the screen of the console 1. This result may be also used as the input into a certain process.
  • the registration and identification operation for a plurality of texts can be simplified, because the input of the password is unnecessary for each text as above described.
  • FIG. 23 is a system configuration diagram of this example.
  • the hardware constitution is not different from FIG. 19, but the memory is different in part.
  • the program memory 10 stores a processing procedure of this example
  • the main memory 30 has a log-in directory 40, and a text content + log-in directory 41, instead of the text content + user name 39 as shown in FIG. 19, and the data memory 20 has a correspondence table 24 as will be described later.
  • the processing flow of this example is largely divided into two sections of a text creating/registering process and a justification identification process for the content.
  • FIG. 24 shows a processing flow for the text creating/registering process.
  • step S241 the text is created and edited, and at step S242, a user name of the text creator is obtained. This portion is the same as steps S201 and S202.
  • the log-in directory of the text creator is obtained from the user name obtained at step S242 and the correspondence table 24, and stored in the log-in directory 40.
  • the correspondence table 24 is a correspondence table between the user name and the log-in directory, and equivalent to a/etc/passwd file in the unix system.
  • the first field indicates the user name
  • the sixth field indicates the log-in directory.
  • the log-in name of the user is stored in the user name 38.
  • the log-in name can be obtained by using a whoami command of C-shell in the unix system.
  • step S272 the log-in directory corresponding to the user name 38 obtained at step S271 is obtained using the correspondence table 24 describing the correspondence relation between the user name and the log-in directory, and stored in the log-in directory 40.
  • the content of the text data 21 and the character train stored in the log-in directory 40 are encoded to generate the justification identification code.
  • This code generating process is to store the content of the text data-21 and the log-in directory 40 into the text content + log-in directory 41 as a series of character train at step S251, and encode the character train stored in the text content + log-in directory 41 at step S252, as shown in FIG. 25.
  • the generated code is stored as the justification identification code 32, and the code generating process is completed.
  • the correspondence process of the created text to the justification identification code is executed.
  • the created text data 21 file and the justification identification code file 23 can be stored in the memory 20 in the mutually corresponding form by storing the justification identification code into the file having the file name of the text file name followed by the expander.
  • the created text data 21 file and the justification identification code file 23 have been stored in the memory 20 in the mutual corresponding form.
  • the above operation is the text creating and registering process.
  • step S262 the log-in directory is fetched (step S262), instead of the password input (step S42) of FIG. 4, and therefore the step S262 will be only described.
  • step S262 a log-in directory of the user to perform the identification is obtained and stored in the log-in directory 40 of the memory 30. This is the same as at steps S242 and S243 of FIG. 20.
  • the justification identification code is generated from the content of specified text data 21 and the log-in directory 40, and compared with the content of justification identification code file 23 corresponding to the specified text data, in which yes if they are equal, or no if otherwise is displayed on the screen of the console 1. This result may be also used as the input into a certain process.
  • the management can be simplified by providing a plurality of users having the same log-in directory, because the log-in directory referenced indirectly from the user name is used as the password for the text registration and the text identification.
  • the text data is processed if the justification is identified, and excluded from the processing if not.
  • the system configuration of this example is the same as in FIG. 1.
  • the program memory 10 further includes a processing procedure corresponding to the flowchart of FIG. 28.
  • the process is largely divided into two sections of a text creating/registering process and a process of identifying the justification of the text data for a requested processing and switching the process depending on its result (or executing if it is justified, or not executing if not).
  • This processing will be described with reference to FIG. 28.
  • This process consists of a justification identification processing portion for identifying the justification of the text data and a portion for switching the execution or refusal of the print depending the result of the previous process.
  • step S281 the file name of interest, as well as the processing command (Zprint), are input from the console 1.
  • step S282 the justification identification process for identifying the justification of the text data is executed.
  • the detail of this process is omitted as it is the same as in the first example.
  • the decision result of valid or invalid is stored in the decision result 33, like the previous example.
  • step S283 the processing is performed depending on the content of the decision result 33. That is, the print output of the specified text data is performed if the content of the decision result 33 is "yes”, and a message that the print output can not be made as a result of justification identification is displayed on the console 1 (for example, displayed as "print output disabled") if the content of the decision result 33 is "no" (the password or the text content is different from that at the creation).
  • the print processing (Zprint) was adopted as an example of the text processing, and the switching between the execution and the pending (non-execution) was performed.
  • a further processing for example, issuing an electronic mail for the disabled print to the specific destination, may be provided to output the print if the result is "yes", or the electronic mail is issued if it is "no". That is, a plurality of executable text processings are prepared, and the processing for execution is switched depending on the decision result.
  • the data of interest for deciding the presence or absence for the alteration of the content was the text data, but may be also possible with the program data.
  • the present invention can be implemented by a system consisting of one or more devices. Further, it will be appreciated that the present invention is also applicable when the feature is accomplished by supplying the program to the system.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Bioethics (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • Document Processing Apparatus (AREA)
  • Storage Device Security (AREA)
US07/842,514 1991-02-27 1992-02-27 Detecting rewriting of stored data, using codes based on password and the stored data Expired - Fee Related US5481672A (en)

Applications Claiming Priority (8)

Application Number Priority Date Filing Date Title
JP3032896A JPH04271462A (ja) 1991-02-27 1991-02-27 文書処理装置及び方法
JP3-032911 1991-02-27
JP3-032913 1991-02-27
JP3032913A JPH04271466A (ja) 1991-02-27 1991-02-27 文書処理方式
JP3032911A JPH04271461A (ja) 1991-02-27 1991-02-27 文書判定方式
JP3032912A JPH04271465A (ja) 1991-02-27 1991-02-27 文書判定方式
JP3-032912 1991-02-27
JP3-032896 1991-02-27

Publications (1)

Publication Number Publication Date
US5481672A true US5481672A (en) 1996-01-02

Family

ID=27459702

Family Applications (1)

Application Number Title Priority Date Filing Date
US07/842,514 Expired - Fee Related US5481672A (en) 1991-02-27 1992-02-27 Detecting rewriting of stored data, using codes based on password and the stored data

Country Status (3)

Country Link
US (1) US5481672A (de)
EP (1) EP0506234B1 (de)
DE (1) DE69225828T2 (de)

Cited By (34)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5546333A (en) * 1994-12-05 1996-08-13 Motorola, Inc. Data processor having a data table for performing a dual function of alphanumeric notice and numerical calculations
US5619571A (en) * 1995-06-01 1997-04-08 Sandstrom; Brent B. Method for securely storing electronic records
US5734819A (en) * 1994-10-12 1998-03-31 International Business Machines Corporation Method and apparatus for validating system operation
US5845068A (en) * 1996-12-18 1998-12-01 Sun Microsystems, Inc. Multilevel security port methods, apparatuses, and computer program products
US5870467A (en) * 1994-09-16 1999-02-09 Kabushiki Kaisha Toshiba Method and apparatus for data input/output management suitable for protection of electronic writing data
US6101605A (en) * 1997-05-15 2000-08-08 Vlsi Technology, Inc. Method and apparatus for performing a secure operation
US6128616A (en) * 1996-12-27 2000-10-03 Canon Kabushiki Kaisha Document management system using an access-limited character train and password, and method and computer-readable medium therefor
US20020078087A1 (en) * 2000-12-18 2002-06-20 Stone Alan E. Content indicator for accelerated detection of a changed web page
US6567850B1 (en) 1998-10-28 2003-05-20 Yodlee, Inc. System and method for determining revenue from an intermediary derived from servicing data requests
US6678683B1 (en) * 1996-12-27 2004-01-13 Canon Kabushiki Kaisha Document management system using an access-limited character train and password, and a method and computer-readable medium therefor
US20040078423A1 (en) * 2002-03-22 2004-04-22 Ramakrishna Satyavolu Method and apparatus for controlled establishment of a turnkey system providing a centralized data aggregation and summary capability to third party entities
US6745936B1 (en) 1996-08-23 2004-06-08 Orion Systems, Inc. Method and apparatus for generating secure endorsed transactions
US6871220B1 (en) 1998-10-28 2005-03-22 Yodlee, Inc. System and method for distributed storage and retrieval of personal information
US20050094178A1 (en) * 2003-10-17 2005-05-05 Canon Kabushiki Kaisha Data processing device and data storage device
US7010693B1 (en) * 1998-12-02 2006-03-07 Supportsoft, Inc. Software vault
US20060107316A1 (en) * 2004-11-18 2006-05-18 Michael Fiske Determining whether to grant access to a passcode protected system
US20060107040A1 (en) * 2004-11-18 2006-05-18 Michael Fiske Setting up a security access system
US20060107312A1 (en) * 2004-11-18 2006-05-18 Michael Fiske System for handing requests for access to a passcode protected entity
US20070180380A1 (en) * 1998-12-08 2007-08-02 Yodlee.Com, Inc. Method and Apparatus for Providing Automation to an Internet Navigation Application
US20070283170A1 (en) * 2006-06-05 2007-12-06 Kabushiki Kaisha Toshiba System and method for secure inter-process data communication
US20090006582A1 (en) * 1999-09-16 2009-01-01 Yodlee.Com Method and Apparatus for Restructuring of Personalized Data for Transmission from a Data Network to Connected and Portable Network Appliances
US20090150971A1 (en) * 2007-12-07 2009-06-11 Srinivas Vedula Techniques for dynamic generation and management of password dictionaries
US20100011222A1 (en) * 2004-11-18 2010-01-14 Michael Fiske Interfacing with a system that includes a passcode authenticator
US7672879B1 (en) 1998-12-08 2010-03-02 Yodlee.Com, Inc. Interactive activity interface for managing personal data and performing transactions over a data packet network
US7707622B2 (en) 2004-11-18 2010-04-27 Biogy, Inc. API for a system having a passcode authenticator
US7752535B2 (en) 1999-06-01 2010-07-06 Yodlec.com, Inc. Categorization of summarized information
US7856386B2 (en) 2006-09-07 2010-12-21 Yodlee, Inc. Host exchange in bill paying services
US7886155B2 (en) 2004-12-20 2011-02-08 Biogy, Inc. System for generating requests to a passcode protected entity
US7979716B2 (en) 2004-11-18 2011-07-12 Biogy, Inc. Method of generating access keys
US8069407B1 (en) 1998-12-08 2011-11-29 Yodlee.Com, Inc. Method and apparatus for detecting changes in websites and reporting results to web developers for navigation template repair purposes
US8190629B2 (en) 1998-12-08 2012-05-29 Yodlee.Com, Inc. Network-based bookmark management and web-summary system
US8261334B2 (en) 2008-04-25 2012-09-04 Yodlee Inc. System for performing web authentication of a user by proxy
US8555359B2 (en) 2009-02-26 2013-10-08 Yodlee, Inc. System and methods for automatically accessing a web site on behalf of a client
US9152779B2 (en) 2011-01-16 2015-10-06 Michael Stephen Fiske Protecting codes, keys and user credentials with identity and patterns

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3920976A (en) * 1974-08-19 1975-11-18 Sperry Rand Corp Information storage security system
US5018096A (en) * 1987-12-28 1991-05-21 Kabushiki Kaisha Toshiba Security administrator for automatically updating security levels associated with operator personal identification data
US5144659A (en) * 1989-04-19 1992-09-01 Richard P. Jones Computer file protection system
US5202982A (en) * 1990-03-27 1993-04-13 Sun Microsystems, Inc. Method and apparatus for the naming of database component files to avoid duplication of files
US5224067A (en) * 1985-07-25 1993-06-29 Sharp Kabushiki Kaisha Electronic memo/retrieval apparatus with confidential storage
US5237678A (en) * 1987-05-08 1993-08-17 Kuechler William L System for storing and manipulating information in an information base
US5239294A (en) * 1989-07-12 1993-08-24 Motorola, Inc. Method and apparatus for authenication and protection of subscribers in telecommunication systems

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3920976A (en) * 1974-08-19 1975-11-18 Sperry Rand Corp Information storage security system
US5224067A (en) * 1985-07-25 1993-06-29 Sharp Kabushiki Kaisha Electronic memo/retrieval apparatus with confidential storage
US5237678A (en) * 1987-05-08 1993-08-17 Kuechler William L System for storing and manipulating information in an information base
US5018096A (en) * 1987-12-28 1991-05-21 Kabushiki Kaisha Toshiba Security administrator for automatically updating security levels associated with operator personal identification data
US5144659A (en) * 1989-04-19 1992-09-01 Richard P. Jones Computer file protection system
US5239294A (en) * 1989-07-12 1993-08-24 Motorola, Inc. Method and apparatus for authenication and protection of subscribers in telecommunication systems
US5202982A (en) * 1990-03-27 1993-04-13 Sun Microsystems, Inc. Method and apparatus for the naming of database component files to avoid duplication of files

Non-Patent Citations (4)

* Cited by examiner, † Cited by third party
Title
Almes et al., "The Eden System: A Technical Review", IEEE Transactions on Software Eng., vol. SE-11, (Jan. 1985), pp. 43-59.
Almes et al., The Eden System: A Technical Review , IEEE Transactions on Software Eng., vol. SE 11, (Jan. 1985), pp. 43 59. *
Lewis et al., "Shared Books: Collaborative Publication Management for an Office Information System", 1988 Conf. on Office Info. Systems, pp. 197-204.
Lewis et al., Shared Books: Collaborative Publication Management for an Office Information System , 1988 Conf. on Office Info. Systems, pp. 197 204. *

Cited By (46)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5870467A (en) * 1994-09-16 1999-02-09 Kabushiki Kaisha Toshiba Method and apparatus for data input/output management suitable for protection of electronic writing data
US5734819A (en) * 1994-10-12 1998-03-31 International Business Machines Corporation Method and apparatus for validating system operation
US5546333A (en) * 1994-12-05 1996-08-13 Motorola, Inc. Data processor having a data table for performing a dual function of alphanumeric notice and numerical calculations
US5619571A (en) * 1995-06-01 1997-04-08 Sandstrom; Brent B. Method for securely storing electronic records
US6745936B1 (en) 1996-08-23 2004-06-08 Orion Systems, Inc. Method and apparatus for generating secure endorsed transactions
US7246097B2 (en) 1996-08-23 2007-07-17 Orion Systems, Inc. Methods and apparatus for generating secure endorsed transactions
US20050004876A1 (en) * 1996-08-23 2005-01-06 Orion Systems Inc. Methods and apparatus for generating secure endorsed transactions
US5845068A (en) * 1996-12-18 1998-12-01 Sun Microsystems, Inc. Multilevel security port methods, apparatuses, and computer program products
US6128616A (en) * 1996-12-27 2000-10-03 Canon Kabushiki Kaisha Document management system using an access-limited character train and password, and method and computer-readable medium therefor
US6678683B1 (en) * 1996-12-27 2004-01-13 Canon Kabushiki Kaisha Document management system using an access-limited character train and password, and a method and computer-readable medium therefor
US6101605A (en) * 1997-05-15 2000-08-08 Vlsi Technology, Inc. Method and apparatus for performing a secure operation
US7765279B1 (en) 1998-10-28 2010-07-27 Verticalone Corporation System and method for scheduling harvesting of personal information
US6567850B1 (en) 1998-10-28 2003-05-20 Yodlee, Inc. System and method for determining revenue from an intermediary derived from servicing data requests
US6871220B1 (en) 1998-10-28 2005-03-22 Yodlee, Inc. System and method for distributed storage and retrieval of personal information
US7552190B1 (en) 1998-10-28 2009-06-23 Verticalone Corporation System and method for automated electronic notification and transaction execution
US7010693B1 (en) * 1998-12-02 2006-03-07 Supportsoft, Inc. Software vault
US20070180380A1 (en) * 1998-12-08 2007-08-02 Yodlee.Com, Inc. Method and Apparatus for Providing Automation to an Internet Navigation Application
US8190629B2 (en) 1998-12-08 2012-05-29 Yodlee.Com, Inc. Network-based bookmark management and web-summary system
US8069407B1 (en) 1998-12-08 2011-11-29 Yodlee.Com, Inc. Method and apparatus for detecting changes in websites and reporting results to web developers for navigation template repair purposes
US7672879B1 (en) 1998-12-08 2010-03-02 Yodlee.Com, Inc. Interactive activity interface for managing personal data and performing transactions over a data packet network
US7752535B2 (en) 1999-06-01 2010-07-06 Yodlec.com, Inc. Categorization of summarized information
US20090006582A1 (en) * 1999-09-16 2009-01-01 Yodlee.Com Method and Apparatus for Restructuring of Personalized Data for Transmission from a Data Network to Connected and Portable Network Appliances
US20020078087A1 (en) * 2000-12-18 2002-06-20 Stone Alan E. Content indicator for accelerated detection of a changed web page
US20040078423A1 (en) * 2002-03-22 2004-04-22 Ramakrishna Satyavolu Method and apparatus for controlled establishment of a turnkey system providing a centralized data aggregation and summary capability to third party entities
US8395797B2 (en) * 2003-10-17 2013-03-12 Canon Kabushiki Kaisha Data processing device and data storage device for performing time certification of digital data
US20100177352A1 (en) * 2003-10-17 2010-07-15 Canon Kabushiki Kaisha Data processing device and data storage device for performing time certification of digital data
US20050094178A1 (en) * 2003-10-17 2005-05-05 Canon Kabushiki Kaisha Data processing device and data storage device
US7715034B2 (en) 2003-10-17 2010-05-11 Canon Kabushiki Kaisha Data processing device and data storage device for performing time certification of digital data
US7702911B2 (en) 2004-11-18 2010-04-20 Biogy, Inc. Interfacing with a system that includes a passcode authenticator
US20060107312A1 (en) * 2004-11-18 2006-05-18 Michael Fiske System for handing requests for access to a passcode protected entity
US7669236B2 (en) * 2004-11-18 2010-02-23 Biogy, Inc. Determining whether to grant access to a passcode protected system
US20100011222A1 (en) * 2004-11-18 2010-01-14 Michael Fiske Interfacing with a system that includes a passcode authenticator
US20060107316A1 (en) * 2004-11-18 2006-05-18 Michael Fiske Determining whether to grant access to a passcode protected system
US7707622B2 (en) 2004-11-18 2010-04-27 Biogy, Inc. API for a system having a passcode authenticator
US7770018B2 (en) 2004-11-18 2010-08-03 Biogy, Inc. Setting up a security access system
US20060107040A1 (en) * 2004-11-18 2006-05-18 Michael Fiske Setting up a security access system
US7979716B2 (en) 2004-11-18 2011-07-12 Biogy, Inc. Method of generating access keys
US7886155B2 (en) 2004-12-20 2011-02-08 Biogy, Inc. System for generating requests to a passcode protected entity
US20070283170A1 (en) * 2006-06-05 2007-12-06 Kabushiki Kaisha Toshiba System and method for secure inter-process data communication
US7856386B2 (en) 2006-09-07 2010-12-21 Yodlee, Inc. Host exchange in bill paying services
US8286000B2 (en) 2007-12-07 2012-10-09 Novell, Inc. Techniques for dynamic generation and management of password dictionaries
US20090150971A1 (en) * 2007-12-07 2009-06-11 Srinivas Vedula Techniques for dynamic generation and management of password dictionaries
US9032216B2 (en) 2007-12-07 2015-05-12 Apple Inc. Techniques for dynamic generation and management of password dictionaries
US8261334B2 (en) 2008-04-25 2012-09-04 Yodlee Inc. System for performing web authentication of a user by proxy
US8555359B2 (en) 2009-02-26 2013-10-08 Yodlee, Inc. System and methods for automatically accessing a web site on behalf of a client
US9152779B2 (en) 2011-01-16 2015-10-06 Michael Stephen Fiske Protecting codes, keys and user credentials with identity and patterns

Also Published As

Publication number Publication date
EP0506234A3 (en) 1993-05-05
DE69225828D1 (de) 1998-07-16
EP0506234B1 (de) 1998-06-10
DE69225828T2 (de) 1998-11-12
EP0506234A2 (de) 1992-09-30

Similar Documents

Publication Publication Date Title
US5481672A (en) Detecting rewriting of stored data, using codes based on password and the stored data
EP0501760B1 (de) Verfahren zur Entdeckung inkorrekter Überschreibung gespeicherter Daten
US5581682A (en) Method for storing and retrieving annotations and redactions in final form documents
US7917845B2 (en) System and method for managing dynamic document references
US5953415A (en) Fingerprinting plain text information
US9460060B2 (en) System and method for managing dynamic document references
US20080270463A1 (en) Document processing system and method therefor
CN101231644B (zh) 信息处理装置、信息处理系统和信息处理方法
US8261187B2 (en) System and method for managing dynamic document references
US8250468B2 (en) System and method for managing dynamic document references
JP2001101173A (ja) 文書の視聴者特定ビューを作成する技法
EP1965314A1 (de) System und verfahren zur dokumentverarbeitung
US8775933B2 (en) System and method for managing dynamic document references
JPH08292950A (ja) 文書処理装置
JPH04271466A (ja) 文書処理方式
JPH04271462A (ja) 文書処理装置及び方法
EP1116110B1 (de) Verfahren zur herstellung einer unlösbaren verknüpfung zwischen einem elektronischen dokument und ole objekten
JPH01169567A (ja) 画像処理装置
JP3126397B2 (ja) 文書処理装置及び方法
GB2339656A (en) Electronic text watermarking
JPH04286065A (ja) 文書管理方式
JP2821274B2 (ja) 文書処理装置及び方法
JPH02289078A (ja) 文書機密保持装置
JP4338227B2 (ja) 文書処理システム
JP2871877B2 (ja) 文書処理装置及び方法

Legal Events

Date Code Title Description
AS Assignment

Owner name: CANON KABUSHIKI KAISHA, A CORP. OF JAPAN, JAPAN

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST.;ASSIGNORS:OKUNO, YASUHIRO;YAMAKAWA, TADASHI;NAGASHIMA, MASAAKI;AND OTHERS;REEL/FRAME:006097/0799

Effective date: 19920408

CC Certificate of correction
FPAY Fee payment

Year of fee payment: 4

FEPP Fee payment procedure

Free format text: PAYER NUMBER DE-ASSIGNED (ORIGINAL EVENT CODE: RMPN); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

Free format text: PAYOR NUMBER ASSIGNED (ORIGINAL EVENT CODE: ASPN); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

FPAY Fee payment

Year of fee payment: 8

REMI Maintenance fee reminder mailed
LAPS Lapse for failure to pay maintenance fees
STCH Information on status: patent discontinuation

Free format text: PATENT EXPIRED DUE TO NONPAYMENT OF MAINTENANCE FEES UNDER 37 CFR 1.362

FP Lapsed due to failure to pay maintenance fee

Effective date: 20080102